c4be027fad011fc9229c75048bd694e7d6ae1eecf7250516acb80479ef29a7a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-28_0f0c0f1d9f258928d62e170086848a2b_cryptolocker
Size

73KB
Sample

240928-e19v2szaqa
MD5

0f0c0f1d9f258928d62e170086848a2b
SHA1

c649a1a2f16b2bd1a865229c9440a2393255d937
SHA256

c4be027fad011fc9229c75048bd694e7d6ae1eecf7250516acb80479ef29a7a0
SHA512

7c58cbbcefaf5055c04f65b3d4e8158bbe148e8d697bb4bbb76eefbed48d7669a9f427ee9d98d9f78bca3b2650fe83fed9def62ba2864680887584bb1ab4b9c6
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZOQ2s:DW60sllyWOtEvwDpjwF85N

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-28_0f0c0f1d9f258928d62e170086848a2b_cryptolocker
- Size
  
  73KB
- MD5
  
  0f0c0f1d9f258928d62e170086848a2b
- SHA1
  
  c649a1a2f16b2bd1a865229c9440a2393255d937
- SHA256
  
  c4be027fad011fc9229c75048bd694e7d6ae1eecf7250516acb80479ef29a7a0
- SHA512
  
  7c58cbbcefaf5055c04f65b3d4e8158bbe148e8d697bb4bbb76eefbed48d7669a9f427ee9d98d9f78bca3b2650fe83fed9def62ba2864680887584bb1ab4b9c6
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZOQ2s:DW60sllyWOtEvwDpjwF85N
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2